Accueil Explorer Aide
Connexion
youyou
/
dms-api
3
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: b67fa0700a
Branches Tags
dms-api
/
plugin
/
saiadmin
/
app
/
logic
/
system
/
SystemUserLogic.php

SystemUserLogic.php 11 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305 
  1. <?php
    2. 

  2. // +----------------------------------------------------------------------
    3. 

  3. // | saiadmin [ saiadmin快速开发框架 ]
    4. 

  4. // +----------------------------------------------------------------------
    5. 

  5. // | Author: sai <1430792918@qq.com>
    6. 

  6. // +----------------------------------------------------------------------
    7. 

  7. namespace plugin\saiadmin\app\logic\system;
    8. 

  8. 

  9. use plugin\saiadmin\app\cache\UserInfoCache;
    10. 

  10. use plugin\saiadmin\app\model\system\SystemDept;
    11. 

  11. use plugin\saiadmin\app\model\system\SystemRole;
    12. 

  12. use plugin\saiadmin\app\model\system\SystemUser;
    13. 

  13. use plugin\saiadmin\exception\ApiException;
    14. 

  14. use plugin\saiadmin\basic\BaseLogic;
    15. 

  15. use Webman\Event\Event;
    16. 

  16. use Tinywan\Jwt\JwtToken;
    17. 

  17. 

  18. /**
    19. 

  19.  * 用户信息逻辑层
    20. 

  20.  */
    21. 

  21. class SystemUserLogic extends BaseLogic
    22. 

  22. {
    23. 

  23. 

  24.     /**
    25. 

  25.      * 构造函数
    26. 

  26.      */
    27. 

  27.     public function __construct()
    28. 

  28.     {
    29. 

  29.         $this->model = new SystemUser();
    30. 

  30.     }
    31. 

  31. 

  32.     /**
    33. 

  33.      * 列表
    34. 

  34.      */
    35. 

  35.     public function getList($query): mixed
    36. 

  36.     {
    37. 

  37.         $saiType = request()->input('saiType', 'list');
    38. 

  38.         $page = request()->input('page', 1);
    39. 

  39.         $limit = request()->input('limit', 10);
    40. 

  40.         $orderBy = request()->input('orderBy', '');
    41. 

  41.         $orderType = request()->input('orderType', $this->orderType);
    42. 

  42.         if(empty($orderBy)) {
    43. 

  43.             $orderBy = $this->orderField !== '' ? $this->orderField : $this->model->getPk();
    44. 

  44.         }
    45. 

  45.         // 如果排序字段是id,明确指定表名避免歧义
    46. 

  46.         if($orderBy === 'id') {
    47. 

  47.             $orderBy = 'sa_system_user.id';
    48. 

  48.         }
    49. 

  49.         $query->field([
    50. 

  50.             'sa_system_user.id' => 'id',
    51. 

  51.             'sa_system_user.nickname' => 'nickname', 
    52. 

  52.             'sa_system_user.username' => 'username', 
    53. 

  53.             'sa_system_user.phone' => 'phone', 
    54. 

  54.             'sa_system_user.email' => 'email', 
    55. 

  55.             'sa_system_user.status' => 'status', 
    56. 

  56.             'sa_system_user.dept_id' => 'dept_id', 
    57. 

  57.             'sa_system_user.create_time' => 'create_time', 
    58. 

  58.             'sa_system_dept.name' => 'dept_name',
    59. 

  59.             'GROUP_CONCAT(sa_system_user_role.role_id)' => 'role_id',
    60. 

  60.             'GROUP_CONCAT(sa_system_role.name)' => 'role_name'
    61. 

  61.         ]);
    62. 

  62.         $query->leftJoin('sa_system_user_role', 'sa_system_user.id = sa_system_user_role.user_id');
    63. 

  63.         $query->leftJoin('sa_system_dept', 'sa_system_user.dept_id = sa_system_dept.id');
    64. 

  64.         $query->leftJoin('sa_system_role', 'sa_system_user_role.role_id = sa_system_role.id');
    65. 

  65.         $query->group('sa_system_user.id');
    66. 

  66.         $query->order($orderBy, $orderType);
    67. 

  67.         if ($saiType === 'all') {
    68. 

  68.             return $query->toArray();
    69. 

  69.         }
    70. 

  70. 

  71.     
    72. 

  72. 

  73.         return $query->paginate($limit, false, ['page' => $page])->toArray();
    74. 

  74.     }
    75. 

  75. 

  76.     /**
    77. 

  77.      * 读取数据
    78. 

  78.      * @param $id
    79. 

  79.      * @return array
    80. 

  80.      */
    81. 

  81.     public function read($id): array
    82. 

  82.     {
    83. 

  83.         $admin = $this->model->findOrEmpty($id);
    84. 

  84.         $data = $admin->hidden(['password'])->toArray();
    85. 

  85.         $data['roleList'] = $admin->roles->toArray() ?: [];
    86. 

  86.         $data['postList'] = $admin->posts->toArray() ?: [];
    87. 

  87.         $data['deptList'] = $admin->depts ? $admin->depts->toArray() : [];
    88. 

  88.         if ($this->adminInfo['id'] > 1) {
    89. 

  89.             // 判断部门id是否有操作权限
    90. 

  90.             $dept_ids = SystemDept::whereRaw('FIND_IN_SET("'.$this->adminInfo['dept_id'].'", level) > 0')->column('id');
    91. 

  91.             if (!in_array($admin['dept_id'], $dept_ids)) {
    92. 

  92.                 throw new ApiException('没有权限操作该部门数据');
    93. 

  93.             }
    94. 

  94.         }
    95. 

  95.         return $data;
    96. 

  96.     }
    97. 

  97. 

  98.     /**
    99. 

  99.      * 添加数据
    100. 

  100.      * @param $data
    101. 

  101.      * @return mixed
    102. 

  102.      */
    103. 

  103.     public function add($data): mixed
    104. 

  104.     {
    105. 

  105.         $data['password'] = password_hash($data['password'], PASSWORD_DEFAULT);
    106. 

  106.         return $this->transaction(function () use ($data) {
    107. 

  107.             $role_ids = $data['role_ids'] ?? [];
    108. 

  108.             $post_ids = $data['post_ids'] ?? [];
    109. 

  109.             if ($this->adminInfo['id'] > 1) {
    110. 

  110.                 // 1、判断部门id是否有操作权限
    111. 

  111.                 $dept_ids = SystemDept::whereRaw('FIND_IN_SET("' . $this->adminInfo['dept_id'] . '", level) > 0')->column('id');
    112. 

  112.                 if (!in_array($data['dept_id'], $dept_ids)) {
    113. 

  113.                     throw new ApiException('没有权限操作该部门数据');
    114. 

  114.                 }
    115. 

  115.                 // 2、判断角色id是否有操作权限
    116. 

  116.                 $roleIds = [];
    117. 

  117.                 foreach ($this->adminInfo['roleList'] as $item) {
    118. 

  118.                     $temp = SystemRole::whereRaw('FIND_IN_SET("' . $item['id'] . '", level) > 0')->column('id');
    119. 

  119.                     $roleIds = array_merge($roleIds, $temp);
    120. 

  120.                 }
    121. 

  121.                 if (count(array_diff($role_ids, $roleIds)) > 0) {
    122. 

  122.                     throw new ApiException('没有权限操作该角色数据');
    123. 

  123.                 }
    124. 

  124.             }
    125. 

  125.             $user = SystemUser::create($data);
    126. 

  126.             $user->roles()->detach();
    127. 

  127.             $user->posts()->detach();
    128. 

  128.             $user->roles()->saveAll($role_ids);
    129. 

  129.             if (!empty($post_ids)) {
    130. 

  130.                 $user->posts()->save($post_ids);
    131. 

  131.             }
    132. 

  132.             return $user->getKey();
    133. 

  133.         });
    134. 

  134.     }
    135. 

  135. 

  136.     /**
    137. 

  137.      * 修改数据
    138. 

  138.      * @param $id
    139. 

  139.      * @param $data
    140. 

  140.      * @return mixed
    141. 

  141.      */
    142. 

  142.     public function edit($id, $data): mixed
    143. 

  143.     {
    144. 

  144.         unset($data['password']);
    145. 

  145.         return $this->transaction(function () use ($data, $id) {
    146. 

  146.             $role_ids = $data['role_ids'] ?? [];
    147. 

  147.             $post_ids = $data['post_ids'] ?? [];
    148. 

  148.             // 1、判断用户是否可以操作
    149. 

  149.             $query = $this->model->where('id', $id);
    150. 

  150.             $query->auth([
    151. 

  151.                 'id' => $this->adminInfo['id'],
    152. 

  152.                 'dept' => $this->adminInfo['deptList']
    153. 

  153.             ]);
    154. 

  154.             $user = $query->findOrEmpty();
    155. 

  155.             if ($user->isEmpty()) {
    156. 

  156.                 throw new ApiException('没有权限操作该数据');
    157. 

  157.             }
    158. 

  158.             if ($this->adminInfo['id'] > 1) {
    159. 

  159.                 // 2、判断部门id是否有操作权限
    160. 

  160.                 $dept_ids = SystemDept::whereRaw('FIND_IN_SET("' . $this->adminInfo['dept_id'] . '", level) > 0')->column('id');
    161. 

  161.                 if (!in_array($data['dept_id'], $dept_ids)) {
    162. 

  162.                     throw new ApiException('没有权限操作该部门数据');
    163. 

  163.                 }
    164. 

  164.                 // 3、判断角色id是否有操作权限
    165. 

  165.                 $roleIds = [];
    166. 

  166.                 foreach ($this->adminInfo['roleList'] as $item) {
    167. 

  167.                     $temp = SystemRole::whereRaw('FIND_IN_SET("' . $item['id'] . '", level) > 0')->column('id');
    168. 

  168.                     $roleIds = array_merge($roleIds, $temp);
    169. 

  169.                 }
    170. 

  170.                 if (count(array_diff($role_ids, $roleIds)) > 0) {
    171. 

  171.                     throw new ApiException('没有权限操作该角色数据');
    172. 

  172.                 }
    173. 

  173.             }
    174. 

  174.             // 如果修改了部门,则清空权限
    175. 

  175.             if ($user->dept_id != $data['dept_id']) {
    176. 

  176.                 $data['game_list'] = null;
    177. 

  177.                 $data['normal_game_list'] = null;
    178. 

  178.                 $data['ad_permission'] = null;
    179. 

  179.             }
    180. 

  180.             $result = parent::edit($id, $data);
    181. 

  181.             if ($result) {
    182. 

  182.                 $user->roles()->detach();
    183. 

  183.                 $user->posts()->detach();
    184. 

  184.                 $user->roles()->saveAll($role_ids);
    185. 

  185.                 if (!empty($post_ids)) {
    186. 

  186.                     $user->posts()->save($post_ids);
    187. 

  187.                 }
    188. 

  188.                 $userInfoCache = new UserInfoCache($id);
    189. 

  189.                 $userInfoCache->clearUserInfo();
    190. 

  190.             }
    191. 

  191.             return $result;
    192. 

  192.         });
    193. 

  193.     }
    194. 

  194. 

  195.     /**
    196. 

  196.      * 删除数据
    197. 

  197.      * @param $ids
    198. 

  198.      */
    199. 

  199.     public function destroy($ids)
    200. 

  200.     {
    201. 

  201.         if (is_array($ids)) {
    202. 

  202.             if (count($ids) > 1) {
    203. 

  203.                 throw new ApiException('禁止批量删除操作');
    204. 

  204.             }
    205. 

  205.             $ids = $ids[0];
    206. 

  206.         }
    207. 

  207.         if ($ids == 1) {
    208. 

  208.             throw new ApiException('超级管理员禁止删除');
    209. 

  209.         }
    210. 

  210.         $query = $this->model->where('id', $ids);
    211. 

  211.         $query->auth([
    212. 

  212.             'id' => $this->adminInfo['id'],
    213. 

  213.             'dept' => $this->adminInfo['deptList']
    214. 

  214.         ]);
    215. 

  215.         $user = $query->findOrEmpty();
    216. 

  216.         if ($user->isEmpty()) {
    217. 

  217.             throw new ApiException('没有权限操作该数据');
    218. 

  218.         }
    219. 

  219.         $userInfoCache = new UserInfoCache($ids);
    220. 

  220.         $userInfoCache->clearUserInfo();
    221. 

  221.         parent::destroy($ids);
    222. 

  222.     }
    223. 

  223. 

  224.     /**
    225. 

  225.      * 用户登录
    226. 

  226.      * @param string $username
    227. 

  227.      * @param string $password
    228. 

  228.      * @param string $type
    229. 

  229.      * @return array
    230. 

  230.      */
    231. 

  231.     public function login(string $username, string $password, string $type): array
    232. 

  232.     {
    233. 

  233.         $adminInfo = $this->model->where('username', $username)->findOrEmpty();
    234. 

  234.         $status = 1;
    235. 

  235.         $message = '登录成功';
    236. 

  236.         if ($adminInfo->isEmpty()) {
    237. 

  237.             $message = '账号或密码错误,请重新输入!';
    238. 

  238.             throw new ApiException($message);
    239. 

  239.         }
    240. 

  240.         if ($adminInfo->status === 2) {
    241. 

  241.             $status = 0;
    242. 

  242.             $message = '您已被禁止登录!';
    243. 

  243.         }
    244. 

  244.         if (!password_verify($password, $adminInfo->password)) {
    245. 

  245.             $status = 0;
    246. 

  246.             $message = '账号或密码错误,请重新输入!';
    247. 

  247.         }
    248. 

  248.         if ($status === 0) {
    249. 

  249.             // 登录事件
    250. 

  250.             Event::emit('user.login', compact('username','status','message'));
    251. 

  251.             throw new ApiException($message);
    252. 

  252.         }
    253. 

  253.         $adminInfo->login_time = date('Y-m-d H:i:s');
    254. 

  254.         $adminInfo->login_ip = request()->getRealIp();
    255. 

  255.         $adminInfo->save();
    256. 

  256. 

  257.         $token = JwtToken::generateToken([
    258. 

  258.             'id' => $adminInfo->id,
    259. 

  259.             'username' => $adminInfo->username,
    260. 

  260.             'type' => $type
    261. 

  261.         ]);
    262. 

  262.         // 登录事件
    263. 

  263.         $admin_id = $adminInfo->id;
    264. 

  264.         Event::emit('user.login', compact('username','status','message','admin_id'));
    265. 

  265.         return $token;
    266. 

  266.     }
    267. 

  267. 

  268.     /**
    269. 

  269.      * 密码修改
    270. 

  270.      * @param $adminId
    271. 

  271.      * @param $oldPassword
    272. 

  272.      * @param $newPassword
    273. 

  273.      * @return bool
    274. 

  274.      */
    275. 

  275.     public function modifyPassword($adminId, $oldPassword, $newPassword): bool
    276. 

  276.     {
    277. 

  277.         $model = $this->model->findOrEmpty($adminId);
    278. 

  278.         if (password_verify($oldPassword, $model->password)) {
    279. 

  279.             $model->password = password_hash($newPassword, PASSWORD_DEFAULT);
    280. 

  280.             return $model->save();
    281. 

  281.         } else {
    282. 

  282.             throw new ApiException('原密码错误');
    283. 

  283.         }
    284. 

  284.     }
    285. 

  285. 

  286.     /**
    287. 

  287.      * 修改数据
    288. 

  288.      */
    289. 

  289.     public function authEdit($id, $data)
    290. 

  290.     {
    291. 

  291.         if ($this->adminInfo['id'] > 1) {
    292. 

  292.             // 判断用户是否可以操作
    293. 

  293.             $query = SystemUser::where('id', $id);
    294. 

  294.             $query->auth([
    295. 

  295.                 'id' => $this->adminInfo['id'],
    296. 

  296.                 'dept' => $this->adminInfo['deptList']
    297. 

  297.             ]);
    298. 

  298.             $user = $query->findOrEmpty();
    299. 

  299.             if ($user->isEmpty()) {
    300. 

  300.                 throw new ApiException('没有权限操作该数据');
    301. 

  301.             }
    302. 

  302.         }
    303. 

  303.         parent::edit($id, $data);
    304. 

  304.     }
    305. 

  305. }
    306.